I have some sort of Redirect virus when I use Firefox. I have AVG antivirus which won't open nor will Spyware Hunter or HiJack This open. Even Combofix won't open. I ran Malwarebytes and Hitman Pro but they found nothing, yet still getting redirected to strange websites. Help please if possible.
Try using Windows Defender Offline (WDO):
https://support.microsoft.com/en-us/...-protect-my-pc
Go to a known clean computer and create a WDO CD (64-bit). Power-on the infected computer with the WDO disk in the drive, booting with it. You will then be able to do a pre-Windows scan, catching things that are buried deep in Windows.
Be patient when running WDO - it takes a long time. But it will likely find whatever is causing this problem.
After running WDO, run some of your other malware tools.
Finally, go to your browser and check your add-ons. Make sure that there aren't any problematic add-ons or extensions. If there are, disable/uninstall them.
If necessary, get a copy of Firefox from a known good computer - burn it to a CD. Then install it from the CD onto the problematic computer.
I uninstalled some programs and no longer have the Redirect virus. I still don't know why I can't open Spyhunter or Combofix. I have run Windows Defender in safe mode and it found nothing. Widows Defender wont open offline but I will try again. Thanks so much for your response.
To run "Windows Defender Offline", you first create the WDO disk, and you then put it in the drive of the infected computer. You then turn the computer on. The computer then boots into the "Windows Defender Offline" environment, in which you can safely run a virus scan.
You are offline during this entire process. WDO is designed to run when the computer is offline.
This is not the same as the Windows Defender program which comes with Windows 7.
I followed all instructions and WDO won't even boot up. I tried this twice with no luck. It burned to disk alright but when I put disk in, it just went straight to my desktop. Dont know what else to try.
Hi wiskerluv,
Welcome to SevenForums! :)
Let's check for a rootkit.
- First of all, the procedures we are about to perform are specific to your problem and should only be used on this specific computer.
- Do not make any changes to your computer that include installing/uninstalling programs, deleting files, modifying the registry, nor running scanners or tools of any kind unless specifically requested by me.
- Please read ALL instructions carefully and perform the steps fully and in the order they are written.
- If things appear to be better, let me know. Just because the symptoms no longer exist as before, does not mean that you are clean.
- Continue to read and follow my instructions until I tell you that your machine is clean.
- If you have any questions at all, please do not hesitate to ask before performing the task that I ask of you, and please wait for my reply before you proceed.
- Scanning with programs and reading the logs do take a fair amount of time. Again, your patience will be necessary. :)
Please do as follows:
Download Farbar Recovery Scan Tool to your desktop from one of the links below. It appears that your system is 64-bit, so please click on the 2nd link:
For x32 (x86) bit systems download Farbar Recovery Scan Tool.
For x64 bit systems download Farbar Recovery Scan Tool x64.
- Right click on the FRST.exe and choose Run as administrator.
- When the tool opens click Yes to disclaimer.
- Under Optional Scan make sure there is a checkmark in the box for Addition.txt to ensure it creates that 2nd log.
- Press Scan button.
- Please attach both logs in your next reply.
Apparently your computer is not set to boot from a CD/DVD. You will need to go into the computer's setup and make sure that the list of boot devices includes your CD/DVD drive; you will then need to put the CD/DVD drive as the first item in the list.
To get into Setup, power the computer on, and as soon as the Dell splash screen disappears, start tapping on F2. Soon you will be in Setup.
Seriously, you want me to post all that information from Farbar? That's a ton of stuff but if I must, I will.
Yes, please attach the logs. FRST scans the registry and file system where malware attacks. I want to rule out the possibility that you are infected with the Smart Service rootkit which blocks the use of any AV and malware removal tools and dumps tons of adware, trojans etc onto the system.
The text that you have entered is too long (45316 characters). Please shorten it to 25000 characters long
Sorry, don't know how to do this. I will just forget about it.
Quote